-
Notifications
You must be signed in to change notification settings - Fork 20
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: container-toolkit patched image with fixed CVE #2415
Conversation
Pull Request Test Coverage Report for Build 10038531766Details
💛 - Coveralls |
✅ Created Kommander branch to test kommander-applications changes: https://github.com/mesosphere/kommander/tree/kapps/main/sandhya/container-toolkit-cve-fix |
30b5807
to
e1720c5
Compare
e1720c5
to
7294356
Compare
79122eb
to
8e88ce3
Compare
@mhrabovcin, The corresponding Kommander PR https://github.com/mesosphere/kommander/pull/4806 (has one test failing which is expected as per the slack (https://nutanix.slack.com/archives/C06KX3DPA9K/p1721319103132479). |
16ac7de
to
9992a26
Compare
b8b93aa
to
9992a26
Compare
bfcceba
to
ec22b8d
Compare
@mhrabovcin , PR is ready for review |
What problem does this PR solve?:
Patch container-toolkit image with fixed CVE's
workflow link:
https://github.com/mesosphere/dkp-container-images/actions/runs/9951761362
sandhya.ravi@GT9X7CVF5F kommander-applications % trivy image ghcr.io/mesosphere/dkp-container-images/nvcr.io/nvidia/k8s/container-toolkit:v1.15.0-ubi8-d2iq.0 --vuln-type os --ignore-unfixed | grep Total 2024-07-16T12:55:02+05:30 INFO Vulnerability scanning is enabled 2024-07-16T12:55:02+05:30 INFO Secret scanning is enabled 2024-07-16T12:55:02+05:30 INFO If your scanning is slow, please try '--scanners vuln' to disable secret scanning 2024-07-16T12:55:02+05:30 INFO Please see also https://aquasecurity.github.io/trivy/v0.53/docs/scanner/secret#recommendation for faster secret detection 2024-07-16T12:55:15+05:30 INFO Detected OS family="redhat" version="8.9" 2024-07-16T12:55:15+05:30 INFO [redhat] Detecting RHEL/CentOS vulnerabilities... os_version="8" pkg_num=201 2024-07-16T12:55:15+05:30 WARN Using severities from other vendors for some vulnerabilities. Read https://aquasecurity.github.io/trivy/v0.53/docs/scanner/vulnerability#severity-selection for details. Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)
Which issue(s) does this PR fix?:
https://jira.nutanix.com/browse/NCN-101394
Special notes for your reviewer:
Does this PR introduce a user-facing change?:
Checklist